This paper will discuss the FIDO Alliance and provide detail on the user journey, implementation, and security considerations of the FIDO Alliance specifications for user authentication. In a futur...
The Business Challenge
When customer-facing services move online, organizations face the challenge of balancing fraud controls with customer experience. People expect speed, security, and privacy online and do not want to be treated like cybercriminals. Verified digital identity offers a modern solution to reduce fraud losses and eliminate account takeover. A distributed identity platform provides user-managed privacy controls and enhances the user experience.
Together, these solutions transform new account origination, reduce administrative overhead, and enhance customer satisfaction and lifetime value. 1Kosmos Identity-based authentication secures customer accounts and personal information with strong multi-factor authentication, allowing individuals control over transaction approval and access to their information. This integration of features represents a significant architectural advantage Our platform provides a tamper evident and trustworthy digital verification of identity, qualifications, and more. Learn More. .
The BlockID Advantage
Automate Secure Customer Onboarding and Authentication
After identity verification and customer enrollment, organizations often issue weak credentials like usernames and passwords. 1Kosmos BlockID offers an authentication platform that supports biometric, passwordless multi-factor authentication, providing an architectural advantage Our platform provides tamper evident, and trustworthy digital identity verification and more. Learn More. . This approach allows for flexible levels of identity assertion to meet your business needs and adapt to the evolving requirements of your customers.
1Kosmos BlockID authentication methods are available through our SDK, and can be easily integrated into any mobile app, delivered through the 1Kosmos BlockID app, or implemented as an appless experience. Users will authenticate via any of our methods depending on the business need, the risk profile of the activity, and the security requirement for each access request.
Implement Non-Phishable Passwordless Authentication
Traditional MFA solutions that rely on SMS, push notifications and email not only present too much friction to the transaction but come with well-known security loopholes that lead to account takeover and fraud. These solutions provide proof of possession, not proof of identity. As a result, consumers are getting phished more often as they routinely get emails, SMS messages, and phone calls trying to trick them into disclosing account credentials, personal information, or downloading malware.
1Kosmos mitigates these problems because our approach ties verified identities to the user’s biometric that was captured at enrollment. Our exceptional user experience is warm and friendly. As a result, every access attempt physically verifies the user identity, leaving no chance for impostors to login, defeating ATO attacks and fraudulent transactions.
Enable Support for Multiple Authentication Methods
The 1Kosmos BlockID platform offers several forms of built-in authentication:
Users can be given the option to utilize their trusted mobile device or via an appless experience for authentication and step-up authentication. Authentication methods provided can be deployed based on risk to the authentication activity.
- “LiveID” advanced biometric authentication
- Device biometrics such as TouchID and FaceID
- Time-based One-Time Password (TOTP)
- One-Time Password (OTP) and Offline Access OTP
- SMS and Email
- Push Notification
- FIDO2 Tokens
- Offline Access
- U2F – Universal Second Factors such as Universal Serial Bus (USB) and near-field communication (NFC)
The 1Kosmos BlockID platform is a flexible and customizable platform, so organization will be able to find the best adaptive authentication method that meets the unique needs of any diverse application ecosystem.
Build Customer Trust and Loyalty Through Enterprise Grade Security
Traditional MFA solutions that rely on SMS, push notifications, and email not only present too much friction to the transaction but also come with well-known security loopholes that lead to account takeover and fraud. These solutions provide proof of possession, not proof of identity. As a result, consumers are getting phished more often as they routinely get emails, SMS messages, and phone calls, trying to trick them into disclosing account credentials, personal information, or downloading malware.
1Kosmos mitigates these problems because our approach ties verified identities to the user’s biometric that was captured at enrollment. Our exceptional user experience is warm and friendly. As a result, every access attempt physically verifies the user identity, leaving no chance for impostors to login, defeating ATO attacks and fraudulent transactions.
Insights
Learn how Indisputable Digital Identities are Created with Biometrics and a Blockchain
Given the stunning success of the recent hacks at MGM and Caesars, it's a safe bet what happened in Vegas won't stay there for long. Even though technology to prevent such breaches is readily avail...
MGM, Caesars Hacks: More of the Same Is Coming Your Way–But Here's How to Stop It
What if the key to your hotel room was suddenly useless, and your personal information was floating in the digital ether? This happened after the recent MGM Resorts cyberattack; the vulnerabilities...
Unmasking the MGM Resorts Cyber Attack: Why Identity-Based Authentication is the Future
Organizations moving from Active Directory to Entra ID gain many advantages, including unified identity management , enhanced security features such as conditional access, and improved integration ...